We review vendors based on rigorous testing and research, and also take into account your feedback and our affiliate commission with providers. Some providers are owned by our parent company.

Learn more

Advertising Disclosure

Tea Dating App Leaks 72,000 User Photos and IDs In Major Breach

Image by Vardan Papikyan, from Unsplash

Tea Dating App Leaks 72,000 User Photos and IDs In Major Breach

Reading time: 2 min

Last Updated: Jul 27, 2025

Written by Kiara Fabbri Multimedia Journalist
Fact-Checked by Sarah Frazier Content Manager

A serious data breach has hit Tea, a women’s dating safety app that recently reached the top of the App Store.

In a rush? Here are the quick facts:

Tea app leaked 72,000 user images, including selfies and photo IDs.
The breach was caused by an unsecured Firebase database.
Hackers posted sensitive data on 4chan, including private messages.

Hackers on 4chan accessed an exposed database from Tea, and later started sharing online users’ selfies and ID photos, as first reported by 404Media.

The breach was possible due to an unsecured Google Firebase database used by Tea. “Yes, if you sent Tea App your face and drivers license, they doxxed you publicly! No authentication, no nothing. It’s a public bucket,” read a 4chan post, reports 404Media.

It added, “DRIVERS LICENSES AND FACE PICS! GET THE FUCK IN HERE BEFORE THEY SHUT IT DOWN!”

Tea confirmed the breach to 404 Media, saying it affected older data from more than two years ago and included 72,000 images, 13,000 selfies and photo IDs, and 59,000 other images from posts and messages.

“This data was originally stored in compliance with law enforcement requirements related to cyber-bullying prevention,” the company explained.

The leaked data also includes direct messages. 404 Media verified the exposure by decompiling the Android app and locating the same storage URL shared on 4chan.

“The images in the bucket are raw and uncensored,” one user wrote. Others on 4chan even created scripts to automatically collect the leaked data.

The verification process for Tea requires users to upload both a selfie and ID picture to confirm their female identity before joining the platform. The platform enables women to share anonymous warnings about men through a system that functions like “Are We Dating the Same Guy?” Facebook groups.

After discovering the breach, Tea stated it is working with cybersecurity experts and said in an email to 404Media that , “Protecting our users’ privacy and data is our highest priority.”

404Media notes that the original 4chan thread has since been taken down, but archived versions continue to circulate.

Kiara Fabbri

Written by: Kiara Fabbri

Hi, I’m Kiara Fabbri a Tech News Writer at WatchEverywhere. I'm a multimedia journalist with a keen interest in innovative and immersive news storytelling. Fluent in three languages—Italian, English, and Spanish—I'm deeply engaged in all facets of news reporting. I am currently undertaking a Ph.D. exploring VR applications in journalism. Following my studies in psychology (BSc) and political psychology (MSc), I embarked on a three-year journey across South America. During this time, I undertook a 4000 km solo bicycle trip from Chile to Brazil. There, I camped, cooked on the road, and volunteered in various facilities. It was during these travels that I discovered my passion for journalism. Subsequently, I pursued a Master's program in journalism innovation and enterprise. My career in journalism has seen me produce VR immersive experiences covering a range of topics. These include documenting an Anti Militaristic raid of a NATO Base, life in the Brazilian Favelas, the recent violent protest clashes in Buenos Aires and finally social projects run by Skaters in the Argentinian ghettos. In addition to my journalistic endeavours, I also practice parkour, a discipline I have cultivated over several years now. I love to make the most of this skill in my journalistic style; for example, it has enabled me to capture dynamic footage from heights during the recent violent clashes in Buenos Aires. There, I scaled heights and employed a long stick on my camera to create aerial 360° views. Through my dedication to pushing the boundaries of journalism, I am committed to amplifying voices, sparking meaningful conversations, and driving positive change in the world.

Did you like this article? Rate it!

I hated it I don't really like it It was ok Pretty good! Loved it!

We're thrilled you enjoyed our work!

As a valued reader, would you mind giving us a shoutout on Trustpilot? It's quick and means the world to us. Thank you for being amazing!

Rate us on Trustpilot

0 Voted by 0 users

Title

Your email Please enter a valid email address.

Comment

Thanks for your feedback

Share & Support

WatchEverywhere is reader-supported so we may receive a commission when you buy through links on our site. You do not pay extra for anything you buy on our site — our commission comes directly from the product owner. Some providers are owned by our parent company. Learn moreWatch Everywhere was established in 2018 as an independent site reviewing VPN services and covering privacy-related stories. Today, our team of hundreds of cybersecurity researchers, writers, and editors continues to help readers fight for their online freedom in partnership with Kape Technologies PLC, which also owns the following products: ExpressVPN, CyberGhost, Intego and Private Internet Access which may be ranked and reviewed on this website. The reviews published on Watch Everywhere are believed to be accurate as of the date of each article, and written according to our strict reviewing standards that prioritize the independent, professional and honest examination of the reviewer, taking into account the technical capabilities and qualities of the product together with its commercial value for users. The rankings and reviews we publish may also take into consideration the common ownership mentioned above, and affiliate commissions we earn for purchases through links on our website. We do not review all VPN providers and information is believed to be accurate as of the date of each article..